Find XSS payloads that actually work by filtering them based on real-world constraints instead of blind payload spraying.
☆258Apr 17, 2026Updated last month
Alternatives and similar repositories for XSSNow
Users that are interested in XSSNow are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ExecEvasion is a lightweight execution-evasion toolkit that generates command variants designed to bypass naive filters and WAF rules by …☆51Jan 31, 2026Updated 3 months ago
- Browser-based Android security auditing tool.☆71May 14, 2026Updated last week
- WebSocket Penetration Testing Toolkit for Burp Suite☆30Mar 5, 2026Updated 2 months ago
- This lab is for **EDUCATIONAL PURPOSES ONLY**. Use it responsibly and only on systems you own or have explicit permission to test. Do not…☆20Feb 20, 2026Updated 3 months ago
- ☆90Sep 13, 2025Updated 8 months ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Droid LLM Hunter is a tool to scan for vulnerabilities in Android applications using Large Language Models (LLMs).☆134May 8, 2026Updated 2 weeks ago
- A proof of concept AMSI & ETW bypass using trampolines for hooking and modifying execution flow☆19Jun 26, 2025Updated 10 months ago
- ☆49Jul 30, 2025Updated 9 months ago
- Burp plugin for jxscout☆21May 12, 2025Updated last year
- Multi-agent AI system using GPT-4o, DeepSeek v3, and Llama 3.3 to detect if CVE vulnerabilities were exploited as zero-days. Analyzes…☆20Feb 13, 2026Updated 3 months ago
- ☆46Mar 30, 2026Updated last month
- a critical memory disclosure vulnerability in MongoDB's zlib compression handling. This tool allows security researchers to extract sensi…☆30Dec 27, 2025Updated 4 months ago
- ☆50Apr 30, 2026Updated 3 weeks ago
- #Hackertea is a sleek terminal user interface written in Golang, designed to bring HackerNews articles directly to your fingertips. Power…☆51May 18, 2026Updated last week
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- A fast and efficient subdomain hijacking scanner that checks for takeover vulnerabilities by matching HTTP response bodies against predef…☆30Apr 12, 2026Updated last month
- 🎭 Reveal the identity behind a share link☆170May 5, 2026Updated 2 weeks ago
- BugBounty-Recon-Methodology☆272May 16, 2026Updated last week
- This tool aims at accumulating javascript files from a given set of subdomains to discover hidden endpoints. It swims through JS files to…☆72Dec 28, 2022Updated 3 years ago
- A python-based vulnerability scanner designed to identify open redirect flaws in website applications.☆25Mar 15, 2026Updated 2 months ago
- Bug Bounty Setup Tools On Fresh VPS. This scripts automatically installs top bug bounty tools and set up environment in newly installed …☆32Jan 27, 2026Updated 3 months ago
- Meteorology reports and forecasts, satellite pass predictions, communications decoding, and imagery analysis for NOAA satellites 🌧 🛰 📡☆18Jul 30, 2023Updated 2 years ago
- A little tool to play with Windows security☆149Apr 10, 2026Updated last month
- ☆250Oct 19, 2025Updated 7 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Burp Bounty Lab provides a safe, local target to validate that your Burp Bounty Pro scanner profiles detect vulnerabilities correctly. It…☆43May 15, 2026Updated last week
- ☆37May 9, 2026Updated 2 weeks ago
- A list of commands, tools and notes about enumerating and exploiting Active Directory and how to defend against these attacks☆23Jun 22, 2021Updated 4 years ago
- Monitor your targets and hunt fresh assets in real time.☆178Feb 23, 2026Updated 3 months ago
- This script automates SQL injection testing using SQLMap with AI-powered decision making.☆29Jun 13, 2025Updated 11 months ago
- Collection of exploits developed by your friendly clown☆15Oct 18, 2025Updated 7 months ago
- ☆26Sep 5, 2025Updated 8 months ago
- Microsoft Entra ID (Azure AD) Unauthenticated Enumeration☆70Feb 5, 2026Updated 3 months ago
- ☆188Jan 23, 2026Updated 4 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Automated red-team toolkit for stress-testing LLM defences - Vector Attacks on LLMs (Gendalf Case Study)☆114Jul 30, 2025Updated 9 months ago
- A tool for analyzing syntactic and semantic properties of C Preprocessor macros in C programs☆12Aug 27, 2025Updated 8 months ago
- Grafana scanner with all public CVEs that I collected in one script to make grafana testing easier☆159Updated this week
- WebRecon is an advanced Open Source Intelligence (OSINT) web reconnaissance tool designed for cybersecurity professionals, penetration te…☆273Mar 20, 2026Updated 2 months ago
- Subdomain Enumerator and Simple Crawler☆365Updated this week
- Glass Cage is a zero-click PNG-based RCE chain in iOS 18.2.1, bypassing LockDown mode protection by exploiting ImageIO (CVE-2025-43300), …☆36Jan 11, 2026Updated 4 months ago
- Pure PowerShell port of PassTheCert tool to authenticate to an LDAP/S server with a certificate through Schannel☆64Apr 13, 2025Updated last year